CVE-2018-3289

Vulnerability in the Oracle VM VirtualBox component of OracleVirtualization (subcomponent: Core). The supported version that is affectedis Prior to 5.2.20. Easily exploitable vulnerability allows unauthenticatedattacker with logon to the infrastructure where Oracle VM VirtualBoxexecutes to compromise Oracle VM VirtualBox. Successful attacks requirehuman interaction from a person other than the attacker and while thevulnerability is in Oracle VM VirtualBox, attacks may significantly impactadditional products. Successful attacks of this vulnerability can result intakeover of Oracle VM VirtualBox. CVSS 3.0 Base Score 8.6 (Confidentiality,Integrity and Availability impacts). CVSS Vector:(CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H).